Skip to content
MalwareWiki

Malware

Bandook

aka Bandok

Bandook malware is a remote access trojan (RAT) first seen in 2007 and has been active for several years.

Bandook, also known as Bandok, is a Windows malware family operated by Dark Caracal.

Background

Bandook is a remote access trojan (RAT) that first surfaced in 2007 and has remained in use for many years. Built in both Delphi and C++, it originated as a commercial RAT authored by a Lebanese developer going by PrinceAli. Over time, multiple Bandook variants were leaked online, making the malware freely downloadable to the public.

Source: Malpedia (Fraunhofer FKIE).